rbg_8c_source.html

 /*
  * Copyright (C) 2012 Michael Brown <mbrown@fensystems.co.uk>.
  *
  * This program is free software; you can redistribute it and/or
  * modify it under the terms of the GNU General Public License as
  * published by the Free Software Foundation; either version 2 of the
  * License, or any later version.
  *
  * This program is distributed in the hope that it will be useful, but
  * WITHOUT ANY WARRANTY; without even the implied warranty of
  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  * General Public License for more details.
  *
  * You should have received a copy of the GNU General Public License
  * along with this program; if not, write to the Free Software
  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
  * 02110-1301, USA.
  *
  * You can also choose to distribute this program under the terms of
  * the Unmodified Binary Distribution Licence (as given in the file
  * COPYING.UBDL), provided that you have satisfied its requirements.
  *
  * Alternatively, you may distribute this code in source or binary
  * form, with or without modification, provided that the following
  * conditions are met:
  *
  *  1. Redistributions of source code must retain the above copyright
  *     notice, this list of conditions and the above disclaimer.
  *
  *  2. Redistributions in binary form must reproduce the above
  *     copyright notice, this list of conditions and the above
  *     disclaimer in the documentation and/or other materials provided
  *     with the distribution.
  */

 FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );

 /** @file
  *
  * RBG mechanism
  *
  * This mechanism is designed to comply with ANS X9.82 Part 4 (April
  * 2011 Draft) Section 10.  This standard is unfortunately not freely
  * available.
  *
  * The chosen RBG design is that of a DRBG with a live entropy source
  * with no conditioning function.  Only a single security strength is
  * supported.  No seedfile is used since there may be no non-volatile
  * storage available.  The system UUID is used as the personalisation
  * string.
  */

 #include <stdint.h>
 #include <string.h>
 #include <ipxe/init.h>
 #include <ipxe/settings.h>
 #include <ipxe/uuid.h>
 #include <ipxe/crypto.h>
 #include <ipxe/drbg.h>
 #include <ipxe/rbg.h>

 /** The RBG */
 struct random_bit_generator rbg;

 /**
  * Start up RBG
  *
  * @ret rc              Return status code
  *
  * This is the RBG_Startup function defined in ANS X9.82 Part 4 (April
  * 2011 Draft) Section 9.1.2.2.
  */
 static int rbg_startup ( void ) {
         union uuid uuid;
         int len;
         int rc;

         /* Record that startup has been attempted (even if unsuccessful) */
         rbg.started = 1;

         /* Try to obtain system UUID for use as personalisation
          * string, in accordance with ANS X9.82 Part 3-2007 Section
          * 8.5.2.  If no UUID is available, proceed without a
          * personalisation string.
          */
         if ( ( len = fetch_uuid_setting ( NULL, &uuid_setting, &uuid ) ) < 0 ) {
                 rc = len;
                 DBGC ( &rbg, "RBG could not fetch personalisation string: "
                        "%s\n", strerror ( rc ) );
                 len = 0;
         }

         /* Instantiate DRBG */
         if ( ( rc = drbg_instantiate ( &rbg.state, &uuid, len ) ) != 0 ) {
                 DBGC ( &rbg, "RBG could not instantiate DRBG: %s\n",
                        strerror ( rc ) );
                 return rc;
         }

         return 0;
 }

 /**
  * Generate bits using RBG
  *
  * @v additional        Additional input
  * @v additional_len    Length of additional input
  * @v prediction_resist Prediction resistance is required
  * @v data              Output buffer
  * @v len               Length of output buffer
  * @ret rc              Return status code
  *
  * This is the RBG_Generate function defined in ANS X9.82 Part 4
  * (April 2011 Draft) Section 9.1.2.2.
  */
 int rbg_generate ( const void *additional, size_t additional_len,
                    int prediction_resist, void *data, size_t len ) {

         /* Attempt startup, if not already attempted */
         if ( ! rbg.started )
                 rbg_startup();

         /* Generate bits.  The DRBG will itself return an error if it
          * is not valid (e.g. due to an instantiation failure).
          */
         return drbg_generate ( &rbg.state, additional, additional_len,
                                prediction_resist, data, len );
 }

 /**
  * Shut down RBG
  *
  */
 static void rbg_shutdown ( void ) {

         /* Uninstantiate DRBG */
         drbg_uninstantiate ( &rbg.state );

         /* Clear startup attempted flag */
         rbg.started = 0;
 }

 /** RBG startup function */
 static void rbg_startup_fn ( void ) {

         /* Start up RBG (if not already started on demand).  There is
          * no way to report an error at this stage, but a failed
          * startup will result in an invalid DRBG that refuses to
          * generate bits.
          */
         if ( ! rbg.started )
                 rbg_startup();
 }

 /** RBG shutdown function */
 static void rbg_shutdown_fn ( int booting __unused ) {

         /* Shut down RBG */
         rbg_shutdown();
 }

 /** RBG startup table entry */
 struct startup_fn startup_rbg __startup_fn ( STARTUP_NORMAL ) = {
         .name = "rbg",
         .startup = rbg_startup_fn,
         .shutdown = rbg_shutdown_fn,
 };
STARTUP_NORMAL
#define STARTUP_NORMAL
Normal startup.
Definition: init.h:63

rc
struct arbelprm_rc_send_wqe rc
Definition: arbel.h:14

init.h

drbg.h
DRBG mechanism.

FILE_LICENCE
FILE_LICENCE(GPL2_OR_LATER_OR_UBDL)

uuid
A universally unique ID.
Definition: uuid.h:15

rbg_startup
static int rbg_startup(void)
Start up RBG.
Definition: rbg.c:73

random_bit_generator::started
int started
Startup has been attempted.
Definition: rbg.h:20

rbg_generate
int rbg_generate(const void *additional, size_t additional_len, int prediction_resist, void *data, size_t len)
Generate bits using RBG.
Definition: rbg.c:116

DBGC
#define DBGC(...)
Definition: compiler.h:505

uuid.h
Universally unique IDs.

crypto.h
Cryptographic API.

rbg_shutdown_fn
static void rbg_shutdown_fn(int booting __unused)
RBG shutdown function.
Definition: rbg.c:156

startup_fn::name
const char * name
Definition: init.h:42

startup_fn
A startup/shutdown function.
Definition: init.h:41

random_bit_generator
An RBG.
Definition: rbg.h:16

additional
uint16_t additional
Additional sense code and qualifier.
Definition: scsi.h:28

__unused
#define __unused
Declare a variable or data structure as unused.
Definition: compiler.h:573

rbg.h
RBG mechanism.

settings.h
Configuration settings.

rbg_startup_fn
static void rbg_startup_fn(void)
RBG startup function.
Definition: rbg.c:144

__startup_fn
struct startup_fn startup_rbg __startup_fn(STARTUP_NORMAL)
RBG startup table entry.

strerror
char * strerror(int errno)
Retrieve string representation of error number.
Definition: strerror.c:78

rbg_shutdown
static void rbg_shutdown(void)
Shut down RBG.
Definition: rbg.c:134

drbg_instantiate
int drbg_instantiate(struct drbg_state *state, const void *personal, size_t personal_len)
Instantiate DRBG.
Definition: drbg.c:78

rbg
struct random_bit_generator rbg
The RBG.
Definition: rbg.c:63

data
uint8_t data[48]
Additional event data.
Definition: ena.h:22

stdint.h

fetch_uuid_setting
int fetch_uuid_setting(struct settings *settings, const struct setting *setting, union uuid *uuid)
Fetch value of UUID setting.
Definition: settings.c:1084

drbg_uninstantiate
void drbg_uninstantiate(struct drbg_state *state)
Uninstantiate DRBG.
Definition: drbg.c:423

len
uint32_t len
Length.
Definition: ena.h:14

NULL
#define NULL
NULL pointer (VOID *)
Definition: Base.h:321

random_bit_generator::state
struct drbg_state state
DRBG state.
Definition: rbg.h:18

string.h
String functions.

drbg_generate
int drbg_generate(struct drbg_state *state, const void *additional, size_t additional_len, int prediction_resist, void *data, size_t len)
Generate pseudorandom bits using DRBG.
Definition: drbg.c:283